CVE-2021-27184

Pelco Digital Sentry Server 7.18.72.11464 has an XML External Entity vulnerability exploitable via the DTD parameter entities technique, resulting in disclosure and retrieval of arbitrary data on the affected node via an out-of-band OOB attack. The vulnerability is triggered when input passed to...

EUVD-2021-27184

Malware in sbrugna...

CVE-2024-27184

Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not...

CVE-2025-27184

After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2025-27184

After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2025-27184

Adobe After Effects is affected by an out-of-bounds read vulnerability (CVE-2025-27184) in versions 25.1, 24.6.4 and earlier. The issue can disclose sensitive memory and may bypass mitigations such as ASLR. Exploitation requires user interaction; a victim must open a specially crafted file. Conne...

CVE-2025-27184 After Effects | Out-of-bounds Read (CWE-125)

After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2025-27184 After Effects | Out-of-bounds Read (CWE-125)

After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

Joomla! URL Validation Vulnerability (20240801)

Joomla! is prone to an inadequate validation of internal URLs vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-27184

creationtimestamp| type| source ---|---|--- 2024-08-20 18:48:57+00:00| seen| https://t.me/cvedetector/3671...

CVE-2024-27184

Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not...

CVE-2024-27184 [20240801] - Core - Inadequate validation of internal URLs

Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not...

Moxa NPort IA5000A Series Cleartext Transmission of Sensitive Information (CVE-2020-27184)

The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-the- Middle attacks. This plugin only works with Tenable.ot. Please visit...

CVE-2022-27184

CVE-2022-27184 affects Horner Automation Cscape Csfont. The vulnerability is an out-of-bounds write (via an uninitialized pointer) that may allow an attacker to execute arbitrary code. Affected product/version: Horner Automation Cscape Csfont up to version 9.90 SP5 (v9.90.196) and prior. Mitigati...

Horner Automation Cscape Csfont

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Horner Automation Equipment: Cscape Csfont Vulnerabilities: Out-of-bounds Write, Out-of-bounds Read, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to...

CVE-2020-27184

CVE-2020-27184 affects NPort IA5000A Series network device servers. Root cause: Telnet-based management communications lack encryption, enabling potential Man‑in‑the‑Middle interference. Practical impact: exposure of sensitive information via unencrypted traffic as described in vendor/NVD entries...

CVE-2021-27184

creationtimestamp| type| source ---|---|--- 2021-02-11 20:42:56+00:00| seen| https://t.me/cibsecurity/23462...

CVE-2021-27184

Pelco Digital Sentry Server 7.18.72.11464 has an XML External Entity vulnerability exploitable via the DTD parameter entities technique, resulting in disclosure and retrieval of arbitrary data on the affected node via an out-of-band OOB attack. The vulnerability is triggered when input passed to...

CVE-2021-27184

Pelco Digital Sentry Server 7.18.72.11464 is vulnerable to XML External Entity (XXE) processing in DSControlPoint.exe when parsing ControlPointCacheShare.xml in %APPDATA% Pelco, enabling disclosure of arbitrary data on the affected node via an out-of-band (OOB) attack. Root cause is unsanitized i...